oss-sec: by thread
583 messages
starting Sep 30 13 and
ending Dec 31 13
Date index |
Thread index |
Author index
- CVE request: VLC Laurent Butti (Sep 30)
- Re: CVE request: VLC Kurt Seifried (Sep 30)
- Re: CVE request: VLC Laurent Butti (Sep 30)
- Re: CVE request: VLC Kurt Seifried (Sep 30)
- Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Henri Salo (Sep 30)
- Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Kurt Seifried (Oct 01)
- <Possible follow-ups>
- Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities security curmudgeon (Oct 01)
- Re: Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Kurt Seifried (Oct 02)
- [CVE request] systemd Huzaifa Sidhpurwala (Oct 01)
- Re: [CVE request] systemd Sebastian Krahmer (Oct 01)
- Re: [CVE request] systemd Kurt Seifried (Oct 01)
- CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro (Oct 01)
- Re: CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro (Oct 03)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried (Oct 03)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Hanno Böck (Oct 04)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried (Oct 04)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro (Oct 04)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried (Oct 04)
- Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried (Oct 03)
- Re: CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro (Oct 03)
- Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow Xen . org security team (Oct 02)
- <Possible follow-ups>
- re: Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow security curmudgeon (Oct 02)
- A note on cookie based sessions Kurt Seifried (Oct 03)
- Re: A note on cookie based sessions Alexander E. Patrakov (Oct 03)
- Re: A note on cookie based sessions Donald Stufft (Oct 03)
- Re: A note on cookie based sessions Kurt Seifried (Oct 03)
- Re: A note on cookie based sessions Andri Möll (Oct 04)
- Re: A note on cookie based sessions Kurt Seifried (Oct 03)
- Re: A note on cookie based sessions Florian Weimer (Oct 03)
- Re: A note on cookie based sessions cve-assign (Oct 04)
- <Possible follow-ups>
- Re: A note on cookie based sessions Igor Sverkos (Oct 04)
- CVE request for Drupal contributed module Forest Monsen (Oct 04)
- Re: CVE request for Drupal contributed module Kurt Seifried (Oct 04)
- CVE duplicates SA-CONTRIB-2013-075 Henri Salo (Oct 05)
- Re: CVE duplicates SA-CONTRIB-2013-075 Forest Monsen (Oct 18)
- Re: CVE duplicates SA-CONTRIB-2013-075 Henri Salo (Oct 21)
- RE: Re: CVE duplicates SA-CONTRIB-2013-075 Christey, Steven M. (Oct 21)
- Re: Re: CVE duplicates SA-CONTRIB-2013-075 Kurt Seifried (Oct 21)
- Re: Re: CVE duplicates SA-CONTRIB-2013-075 Forest Monsen (Oct 22)
- Re: CVE duplicates SA-CONTRIB-2013-075 Henri Salo (Oct 21)
- Re: CVE duplicates SA-CONTRIB-2013-075 Forest Monsen (Oct 18)
- Request for linux-distros () vs openwall org membership Salvatore Bonaccorso (Oct 07)
- Re: Request for linux-distros () vs openwall org membership Moritz Muehlenhoff (Oct 07)
- Re: Request for linux-distros () vs openwall org membership Solar Designer (Oct 15)
- Re: Request for linux-distros () vs openwall org membership Salvatore Bonaccorso (Oct 15)
- Re: Request for linux-distros () vs openwall org membership Solar Designer (Oct 15)
- Re: Request for linux-distros () vs openwall org membership Moritz Muehlenhoff (Oct 07)
- CVE Request: remote command-injection flaw in HTTP::Body::Multipart versions 1.08 and later Murray McAllister (Oct 07)
- CVE request: mahara 1.7.3 Raphael Geissert (Oct 08)
- Re: CVE request: mahara 1.7.3 Raphael Geissert (Oct 10)
- Re: CVE request: mahara 1.7.3 Kurt Seifried (Oct 10)
- Re: CVE request: mahara 1.7.3 Raphael Geissert (Oct 15)
- Re: Re: CVE request: mahara 1.7.3 Kurt Seifried (Oct 15)
- Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov (Oct 08)
- Re: Vulnerability in Webkit-GTK and PulseAudio volume handling Colin Guthrie (Oct 10)
- Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov (Oct 10)
- Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Xabier Rodríguez Calvar (Oct 11)
- Re: Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov (Oct 11)
- Message not available
- Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov (Oct 21)
- Re: Vulnerability in Webkit-GTK and PulseAudio volume handling Colin Guthrie (Oct 10)
- Re: Vulnerability Reported in my Ruby Gem Kurt Seifried (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... gremlin (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Alex Gaynor (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Raphael Geissert (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Seth Arnold (Oct 09)
- RE: Source of bad password hashing practices? MySQL manual... Christey, Steven M. (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Chris Palmer (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Kurt Seifried (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... Jeremy Stanley (Oct 09)
- RE: Source of bad password hashing practices? MySQL manual... Christey, Steven M. (Oct 09)
- Re: Source of bad password hashing practices? MySQL manual... John Haxby (Nov 07)
- Re: CVE Request - Slim 1.3.6 fixes a security issue Kurt Seifried (Oct 09)
- Re: CVE Request - Quassel IRC SQL injection Kurt Seifried (Oct 10)
- Re: CVE Request - Quassel IRC SQL injection Bas Pape (Oct 11)
- Re: CVE Request - Quassel IRC SQL injection Kurt Seifried (Oct 11)
- Re: CVE Request - Quassel IRC SQL injection Bas Pape (Oct 11)
- Re: Integer overflow in libtar (<= 1.2.19) Naufragium Est (Oct 09)
- Re: Integer overflow in libtar (<= 1.2.19) Chris Palmer (Oct 09)
- Re: 2 CVE's to be rejected cve-assign (Oct 09)
- Re: 2 CVE's to be rejected Kurt Seifried (Oct 09)
- RE: 2 CVE's to be rejected Christey, Steven M. (Oct 10)
- Re: RE: 2 CVE's to be rejected Kurt Seifried (Oct 10)
- Re: 2 CVE's to be rejected Kurt Seifried (Oct 09)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Matt Johnston (Oct 10)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Seth Arnold (Oct 10)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried (Oct 10)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried (Oct 10)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Matt Johnston (Oct 11)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried (Oct 15)
- Re: CVE Request: dropbear sshd daemon 2013.59 release Matt Johnston (Oct 11)
- Re: RESEND: CVE Request: pwgen Michael Samuel (Oct 10)
- Re: RESEND: CVE Request: pwgen Solar Designer (Oct 11)
- Re: RESEND: CVE Request: pwgen Kurt Seifried (Oct 15)
- Re: RESEND: CVE Request: pwgen Michael Samuel (Oct 17)
- Re: RESEND: CVE Request: pwgen Solar Designer (Oct 22)
- Re: RESEND: CVE Request: pwgen Michael Samuel (Oct 22)
- Re: RESEND: CVE Request: pwgen Kurt Seifried (Oct 22)
- Re: RESEND: CVE Request: pwgen Kurt Seifried (Oct 15)
- Re: libtar: missing validation of file names Kurt Seifried (Oct 10)
- Re: Re: browser document.cookie DoS vulnerability aaron guzman (Oct 11)
- Re: Re: browser document.cookie DoS vulnerability Joel Weinberger (Oct 11)
- Re: Re: browser document.cookie DoS vulnerability Kurt Seifried (Oct 11)
- Re: Re: browser document.cookie DoS vulnerability Murray McAllister (Oct 14)
- Re: browser document.cookie DoS vulnerability cve-assign (Oct 15)
- Re: Re: browser document.cookie DoS vulnerability Kurt Seifried (Oct 15)
- Re: browser document.cookie DoS vulnerability cve-assign (Oct 16)
- Re: browser document.cookie DoS vulnerability cve-assign (Oct 17)
- Re: browser document.cookie DoS vulnerability Mozilla Security (Oct 17)
- Re: Re: browser document.cookie DoS vulnerability Kurt Seifried (Oct 11)
- Re: CVE request for saltstack minion identity usurpation Kurt Seifried (Oct 15)
- Re: CVE request for saltstack minion identity usurpation Kurt Seifried (Oct 15)
- Re: CVE request for saltstack minion identity usurpation Kurt Seifried (Oct 18)
- Re: CVE request for saltstack minion identity usurpation Kurt Seifried (Oct 15)
- Re: CVE request for saltstack minion identity usurpation Kurt Seifried (Oct 15)
- Re: CVE request: xss in XHProf Kurt Seifried (Oct 15)
- Re: CVE Request : poppler < 0.13.0 Kurt Seifried (Oct 15)
- Re: CVE request: pyxtrlock Kurt Seifried (Oct 15)
- Re: CVE request: pyxtrlock Leon Weber (Oct 15)
- Re: CVE request: pyxtrlock Kurt Seifried (Oct 15)
- Re: CVE request: pyxtrlock cve-assign (Oct 15)
- Re: Re: CVE request: pyxtrlock Kurt Seifried (Oct 15)
- Re: CVE request: pyxtrlock Leon Weber (Oct 15)
- Re: CVE request for a vulnerability in OpenStack Glance Kurt Seifried (Oct 15)
- Re: WebTester 5.x Multiple Vulnerabilities Kurt Seifried (Oct 15)
- Re: CVE request: slapd segfaults on certain queries with rwm overlay enabled Kurt Seifried (Oct 18)
- Re: CVE request: echoping buffer overflow vulnerabilities Kurt Seifried (Oct 18)
- Re: CVE request: echoping buffer overflow vulnerabilities Moritz Muehlenhoff (Oct 20)
- Re: CVE request: echoping buffer overflow vulnerabilities Kurt Seifried (Oct 21)
- Re: CVE request: echoping buffer overflow vulnerabilities Moritz Muehlenhoff (Oct 20)
- Re: CVE request for Drupal contributed modules Kurt Seifried (Oct 18)
- <Possible follow-ups>
- CVE request for Drupal contributed modules Forest Monsen (Nov 02)
- Re: CVE request for Drupal contributed modules Kurt Seifried (Nov 03)
- Re: CVE request for Drupal contributed modules Forest Monsen (Nov 06)
- Re: CVE request for Drupal contributed modules Kurt Seifried (Nov 03)
- CVE request for Drupal contributed modules Forest Monsen (Nov 17)
- Re: CVE request for Drupal contributed modules Kurt Seifried (Nov 18)
- Re: CVE Request: Node.js HTTP Pipelining DoS Kurt Seifried (Oct 19)
- Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 Kurt Seifried (Oct 21)
- Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 Salvatore Bonaccorso (Dec 23)
- Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 cve-assign (Dec 23)
- Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 Salvatore Bonaccorso (Dec 23)
- Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried (Oct 21)
- Re: CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava (Oct 21)
- Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried (Oct 21)
- Re: CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava (Oct 21)
- <Possible follow-ups>
- Re: CVE for Wordpress plugin Portable-phpmyadmin security curmudgeon (Oct 22)
- Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried (Oct 22)
- Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava (Oct 22)
- Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried (Oct 23)
- Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried (Oct 22)
- Re: CVE request: cmsmadesimple before 1.11.8 / bad upstream behaviour vs. CVE assignment Kurt Seifried (Oct 21)
- Re: CVE Request: LDAP Account Manager XSS in login.php Kurt Seifried (Oct 21)
- Re: CVE Request: MantisBT before 1.2.16 XSS vulnerability Kurt Seifried (Oct 22)
- Re: CVE Request: lightdm no longer confines guest profile with AppArmor Kurt Seifried (Oct 22)
- Re: CVE Request: lightdm no longer confines guest profile with AppArmor Marc Deslauriers (Oct 22)
- Re: CVE Request: lightdm no longer confines guest profile with AppArmor Kurt Seifried (Oct 22)
- Re: CVE Request: lightdm no longer confines guest profile with AppArmor Marc Deslauriers (Oct 22)
- Re: CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kurt Seifried (Oct 22)
- <Possible follow-ups>
- CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kevin Pawloski (Oct 24)
- Re: CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kurt Seifried (Oct 24)
- Re: CVE request: another glibc flaw, similar to CVE-2013-1914, but in AF_INET6 Kurt Seifried (Oct 22)
- Re: VICIDIAL 2.7 - SQL Injection, Command Injection Kurt Seifried (Oct 24)
- Re: CVE Request: gnutls/libdane buffer overflow Kurt Seifried (Oct 24)
- Re: CVE Request: gnutls/libdane buffer overflow Tomas Hoger (Oct 31)
- Re: CVE Request: gnutls/libdane buffer overflow Kurt Seifried (Oct 31)
- Re: CVE request: Linux kernel: net: memory corruption with UDP_CORK and UFO Kurt Seifried (Oct 25)
- Re: CVE request: 3 vulnerabilities in poppler and 1 in Xpdf Kurt Seifried (Oct 28)
- Re: CVE Request: libxml2 external parsed entities issue Huzaifa Sidhpurwala (Oct 28)
- Re: CVE Request: libxml2 external parsed entities issue Nicolas Grégoire (Oct 29)
- Re: CVE Request: libxml2 external parsed entities issue Kurt Seifried (Oct 29)
- Re: CVE Request: libxml2 external parsed entities issue Nicolas Grégoire (Oct 29)
- Re: CVE request for a vulnerability in OpenStack Keystone Kurt Seifried (Oct 29)
- Re: CVE Request: sup MUA Command Injection Kurt Seifried (Oct 29)
- Re: CVE Request: sup MUA Command Injection Murray McAllister (Oct 29)
- Re: CVE Request: sup MUA Command Injection Kurt Seifried (Oct 29)
- Re: CVE Request: sup MUA Command Injection Murray McAllister (Oct 29)
- Re: CVE Request -- Linux kernel: ipc: ipc_rcu_putref refcount races Kurt Seifried (Oct 30)
- Re: CVE Request Kurt Seifried (Oct 31)
- Re: Xen Security Advisory 73 - Lock order reversal between page allocation and grant table locks Kurt Seifried (Nov 01)
- <Possible follow-ups>
- Xen Security Advisory 73 - Lock order reversal between page allocation and grant table locks Xen . org security team (Nov 01)
- Re: CVE request for a vulnerability in OpenStack Nova Kurt Seifried (Nov 03)
- <Possible follow-ups>
- CVE request for a vulnerability in OpenStack Nova Thierry Carrez (Dec 11)
- Re: CVE request for a vulnerability in OpenStack Nova cve-assign (Dec 11)
- Re: some unstracked linux kernel security fixes Kurt Seifried (Nov 04)
- Re: some unstracked linux kernel security fixes Petr Matousek (Nov 12)
- Re: some unstracked linux kernel security fixes Petr Matousek (Nov 14)
- Re: some unstracked linux kernel security fixes Dan Carpenter (Nov 14)
- Re: some unstracked linux kernel security fixes Petr Matousek (Nov 14)
- kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Petr Matousek (Nov 26)
- Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Greg Kroah-Hartman (Dec 02)
- Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Linus Torvalds (Dec 02)
- Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Petr Matousek (Dec 04)
- Re: some unstracked linux kernel security fixes Petr Matousek (Nov 14)
- Re: possible CVE request: Tryton client input sanitization flaw Kurt Seifried (Nov 04)
- Re: CVE Request: IBUS showing passwords during password input Fuminobu TAKEYAMA (Nov 04)
- Re: Re: CVE Request: IBUS showing passwords during password input Kurt Seifried (Nov 04)
- Re: CVE Request: lighttpd using vulnerable cipher suites with SNI Kurt Seifried (Nov 04)
- Re: openssl default ciphers Daniel Kahn Gillmor (Nov 04)
- Re: openssl default ciphers Eric H. Christensen (Nov 04)
- Re: openssl default ciphers Hanno Böck (Nov 04)
- Re: openssl default ciphers Russ Allbery (Nov 04)
- Re: openssl default ciphers Stefan Bühler (Nov 04)
- Re: openssl default ciphers Mike (Nov 04)
- Re: openssl default ciphers Eric H. Christensen (Nov 04)
- Re: openssl default ciphers leToff (Nov 04)
- Re: openssl default ciphers Stefan Bühler (Nov 05)
- Re: openssl default ciphers Reed Loden (Nov 04)
- Re: openssl default ciphers Florian Weimer (Nov 05)
- Re: XSS in CollectiveAccess 1.3 and earlier Kurt Seifried (Nov 04)
- Re: CVE request: drupalauth module for simpleSAMLphp trivial impersonation Kurt Seifried (Nov 08)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Vincent Danen (Nov 05)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Florian Weimer (Nov 05)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Marcus Meissner (Nov 05)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Vincent Danen (Nov 05)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Kurt Seifried (Nov 05)
- Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Florian Weimer (Nov 05)
- Re: CVE Request - OpenSSH Kurt Seifried (Nov 07)
- Re: Xen Security Advisory 75 - Host crash due to guest VMX instruction execution Kurt Seifried (Nov 08)
- Re: CVE Request: bip denial of service via resource leak Kurt Seifried (Nov 08)
- Re: CVE Request: multiple vulnerabilities in spip David Prévot (Nov 10)
- Re: CVE Request: multiple vulnerabilities in spip Kurt Seifried (Nov 10)
- Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Kurt Seifried (Nov 12)
- Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Josef Šimánek (Nov 12)
- Re: Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Kurt Seifried (Nov 12)
- Re: perdition: ssl_outgoing_ciphers not applied to STARTTLS connections Kurt Seifried (Nov 14)
- Re: Microsoft Warns Customers Away From RC4 and SHA-1 Tim (Nov 13)
- Re: Microsoft Warns Customers Away From RC4 and SHA-1 Eric H. Christensen (Nov 13)
- cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Daniel Kahn Gillmor (Nov 13)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Tim (Nov 14)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried (Nov 14)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Chris Palmer (Nov 14)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried (Nov 14)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Chris Palmer (Nov 15)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried (Nov 15)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Marcus Meissner (Nov 15)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Tim (Nov 15)
- Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Seth Arnold (Nov 15)
- Re: RE: [vs-plain] Request for CVE Identifiers Kurt Seifried (Nov 13)
- Re: CVE request: ppthtml heap-based buffer overflow Kurt Seifried (Nov 13)
- Re: CVE request: ppthtml heap-based buffer overflow Michael Gilbert (Nov 13)
- Re: CVE request: ppthtml heap-based buffer overflow Murray McAllister (Nov 13)
- Re: Requesting four (4) CVE identifiers for GitLab Kurt Seifried (Nov 14)
- Re: Requesting four (4) CVE identifiers for GitLab Jacob Vosmaer (Nov 18)
- Re: CVE request: ath9k_htc improperly updates MAC address Kurt Seifried (Nov 14)
- Re: CVE Request: grub-mkconfig Kurt Seifried (Nov 14)
- Re: CVE request: Linux kernel: net: ipvs stack buffer overflow Kurt Seifried (Nov 15)
- Re: CVE request for graphicsmagick DoS Kurt Seifried (Nov 15)
- Re: CVE request: RubyGem omniauth-facebook access token security vulnerability Josef Šimánek (Nov 18)
- Re: Re: CVE request: RubyGem omniauth-facebook access token security vulnerability Kurt Seifried (Nov 18)
- Re: CVE requests for three Linux kernel issues Petr Matousek (Nov 19)
- Re: CVE requests for three Linux kernel issues P J P (Nov 19)
- Re: CVE requests for three Linux kernel issues Daniel Borkmann (Nov 20)
- Re: CVE requests for three Linux kernel issues P J P (Nov 19)
- Re: Xen Security Advisory 78 - Insufficient TLB flushing in VT-d (iommu) code Kurt Seifried (Nov 21)
- Re: CVE request for a vulnerability in OpenStack Ceilometer Kurt Seifried (Nov 22)
- Re: Linux kernel CVE fixes Marcus Meissner (Nov 27)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Kurt Seifried (Nov 25)
- RE: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Christey, Steven M. (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Seth Arnold (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Ramon de C Valle (Nov 25)
- RE: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Christey, Steven M. (Nov 25)
- Re: CVE request: XSS flaw in Ganglia web interface Kurt Seifried (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup Kurt Seifried (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup P J P (Nov 27)
- Re: CVE Request: static IV used in Percona XtraBackup Florian Weimer (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup Michael Samuel (Nov 26)
- Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried (Nov 26)
- Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried (Nov 28)
- Re: CVE Request: FFmpeg 2.1 multiple problems Michael Niedermayer (Nov 28)
- Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried (Dec 06)
- Re: CVE Request: FFmpeg 2.1 multiple problems Michael Niedermayer (Nov 28)
- Re: CVE Request: FFmpeg 2.1 multiple problems cve-assign (Dec 08)
- Re: CVE request: Apache Solr 4.6.0 Kurt Seifried (Nov 26)
- Re: CVE request: hplip insecure temporary file handling in pkit.py Raphael Geissert (Nov 27)
- Re: CVE request: hplip insecure temporary file handling in pkit.py Sebastian Krahmer (Nov 27)
- Re: CVE request: hplip insecure temporary file handling in pkit.py Kurt Seifried (Nov 27)
- Re: CVE request: hplip insecure temporary file handling in pkit.py Kurt Seifried (Nov 27)
- Re: CVE request: hplip insecure temporary file handling in pkit.py Sebastian Krahmer (Nov 27)
- Re: CVE Request: ownCloud security bypass on admin page Kurt Seifried (Nov 27)
- Re: CVE Request: adequate: privilege escalation via tty hijacking Kurt Seifried (Nov 29)
- Re: CVE request: incorrect parsing of access control file in nbd-server Kurt Seifried (Nov 29)
- Re: CVE Request: Linux kernel: net: uninitialised memory leakage Kurt Seifried (Nov 28)
- Re: CVE Request: Linux kernel: net: uninitialised memory leakage Hannes Frederic Sowa (Nov 28)
- RE: http://nvd.nist.gov/nvd.cfm?cvename=CVE-XXX URLs result in 404 Izadjoo, Meisam (Nov 29)
- RE: http://nvd.nist.gov/nvd.cfm?cvename=CVE-XXX URLs result in 404 Izadjoo, Meisam (Nov 29)
- Re: CVE request for OpenTTD Kurt Seifried (Nov 29)
- Re: CVE Request: Apache Solr XXE Kurt Seifried (Nov 28)
- Re: CVE request: ClamAV vulnerabilities Kurt Seifried (Nov 29)
- Re: CVE request: ClamAV vulnerabilities George Theall (Nov 29)
- Re: CVE request: ClamAV vulnerabilities Kurt Seifried (Dec 06)
- Re: CVE request: ClamAV vulnerabilities Sergey Popov (Dec 09)
- Re: CVE request: ClamAV vulnerabilities cve-assign (Dec 09)
- Re: CVE request: ClamAV vulnerabilities cve-assign (Dec 11)
- Re: CVE request: ClamAV vulnerabilities cve-assign (Dec 12)
- Re: CVE request: ClamAV vulnerabilities George Theall (Nov 29)
- Re: CVE request: UnrealIRCd remote DoS Kurt Seifried (Nov 29)
- Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Ian Jackson (Dec 02)
- Re: CVE request: samba pam_winbind authentication fails open Kurt Seifried (Dec 02)
- Re: Command injection vulnerability in Ruby Gem sprout 0.7.246 Kurt Seifried (Dec 02)
- Re: SNMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out Kurt Seifried (Dec 04)
- Re: CVE Request: xorg-server and pixman Kurt Seifried (Dec 03)
- Re: CVE Request: xorg-server and pixman Murray McAllister (Dec 03)
- Re: CVE Request: xorg-server and pixman Jamie Strandboge (Dec 04)
- Re: CVE Request: xorg-server and pixman Kurt Seifried (Dec 04)
- Re: CVE Request: xorg-server and pixman Murray McAllister (Dec 03)
- Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails kpolitowicz (Dec 03)
- Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Kurt Seifried (Dec 03)
- Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Christopher Dell (Dec 05)
- Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Kurt Seifried (Dec 05)
- Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Kurt Seifried (Dec 03)
- Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails chris (Dec 05)
- Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails nick (Dec 22)
- Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Solar Designer (Dec 22)
- Re: Duplicate OpenStack CVEs for Horizon? Kurt Seifried (Dec 03)
- Re: CVE needed for hplip insecure auto update feature? Kurt Seifried (Dec 04)
- Re: CVE request: Kernel: ping: NULL pointer dereference on write to msg_name Vasily Kulikov (Dec 06)
- Re: CVE request: Kernel: ping: NULL pointer dereference on write to msg_name Kurt Seifried (Dec 06)
- Re: CVE request: Linux kernel: net: fib: fib6_add: potential NULL pointer dereference Kurt Seifried (Dec 06)
- Re: CVE request for Drupal core, and contributed modules Henri Salo (Dec 06)
- Re: CVE request for Drupal core, and contributed modules Forest Monsen (Dec 07)
- Re: CVE request for Drupal core, and contributed modules Kurt Seifried (Dec 07)
- Re: CVE request for Drupal core, and contributed modules Forest Monsen (Dec 09)
- Re: CVE request for Drupal core, and contributed modules Forest Monsen (Dec 07)
- Re: CVE request for Drupal core, and contributed modules Forest Monsen (Dec 09)
- Re: CVE request for Drupal core, and contributed modules cve-assign (Dec 11)
- Re: CVE request: two issues in libmicrohttpd Florian Weimer (Dec 09)
- Re: CVE request: two issues in libmicrohttpd cve-assign (Dec 09)
- Re: Issue with PYTHON_EGG_CACHE cve-assign (Dec 09)
- Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried (Dec 13)
- Re: Issue with PYTHON_EGG_CACHE cve-assign (Dec 15)
- Re: Re: Issue with PYTHON_EGG_CACHE Jeremy Stanley (Dec 15)
- Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried (Dec 15)
- Re: Re: Issue with PYTHON_EGG_CACHE Yves-Alexis Perez (Dec 16)
- Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried (Dec 16)
- Re: Re: Issue with PYTHON_EGG_CACHE Yves-Alexis Perez (Dec 17)
- Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried (Dec 13)
- Re: CPython hash secret can be recoved remotely cve-assign (Dec 09)
- Re: CVE request: pam: password hashes aren't compared case-sensitively Solar Designer (Dec 09)
- Re: CVE request: pam: password hashes aren't compared case-sensitively Raphael Geissert (Dec 09)
- Re: CVE request: pam: password hashes aren't compared case-sensitively cve-assign (Dec 09)
- Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign (Dec 09)
- Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities Ratul Gupta (Dec 10)
- Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities George Theall (Dec 10)
- Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign (Dec 11)
- Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign (Dec 10)
- Re: CVE request: Linux kernel: net: memory leak in recvmsg handler msg_name & msg_namelen logic Marcus Meissner (Dec 10)
- Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files Salvatore Bonaccorso (Dec 10)
- Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files cve-assign (Dec 11)
- Re: CVE request for remote code execution in ack Andy Lester (Dec 10)
- Re: CVE request for remote code execution in ack Axel Beckert (Dec 10)
- Re: CVE request for remote code execution in ack Andy Lester (Dec 10)
- Re: CVE request for remote code execution in ack Axel Beckert (Dec 10)
- Re: CVE request for Plone cve-assign (Dec 11)
- Re: CVE request: devscripts (uscan) command execution flaw Murray McAllister (Dec 10)
- Re: CVE request: devscripts (uscan) command execution flaw cve-assign (Dec 11)
- Re: CVE request: TYPO3-CORE-SA-2013-004 and TYPO3-FLOW-SA-2013-001 cve-assign (Dec 11)
- <Possible follow-ups>
- [OSSA 2013-034] Heat CFN policy rules not all enforced (CVE-2013-6426) Jeremy Stanley (Dec 11)
- Re: CVE Request: ZNC IRC Bouncer DoS in FiSH Plugin cve-assign (Dec 11)
- Re: CVE Request: devscripts (uscan) broken handling of filenames with whitespace cve-assign (Dec 12)
- Re: Command injection in Ruby Gem Webbynode 1.0.5.3 cve-assign (Dec 12)
- Re: [vs-plain] kvm issues Paolo Bonzini (Dec 13)
- Re: Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line Larry W. Cashdollar (Dec 15)
- Re: Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line cve-assign (Dec 15)
- Re: CVE request: Juvia secret token handling cve-assign (Dec 17)
- Re: CVE Request: Proc::Daemon writes pidfile with mode 666 cve-assign (Dec 17)
- CVE already assigned for 1026891? cve-assign (Dec 18)
- Re: CVE already assigned for 1026891? Vincent Danen (Dec 18)
- Re: CVE already assigned for 1026891? Murray McAllister (Dec 18)
- Re: CVE already assigned for 1026891? Marcus Meissner (Dec 20)
- Re: CVE already assigned for 1026891? Vincent Danen (Dec 20)
- Re: CVE already assigned for 1026891? Vincent Danen (Dec 18)
- Re: possible CVE request for rpath issues fixed via slackware updates cve-assign (Dec 19)
- Re: CVE REJECTS Solar Designer (Dec 22)
- Re: CVE REJECTS Kurt Seifried (Dec 22)
- Re: CVE request: Asterisk AST-2013-007 cve-assign (Dec 20)
- Re: Re: [SECURITY] [DSA 2826-1] denyhosts security update Yves-Alexis Perez (Dec 22)
- Re: CVE request: denial of service in Nagios (process_cgivars()) Salvatore Bonaccorso (Dec 23)
- Re: CVE request: denial of service in Nagios (process_cgivars()) cve-assign (Dec 23)
- Re: CVE request: denial of service in Nagios (process_cgivars()) Vincent Danen (Dec 23)
- Re: CVE request: denial of service in Nagios (process_cgivars()) cve-assign (Dec 24)
- Re: CVE issues with recent python flaws Kurt Seifried (Dec 26)
- Re: CVE issues with recent python flaws cve-assign (Dec 27)
- Re: CVE Request: rubygem-will_paginate XSS vulnerabilities Kurt Seifried (Dec 26)
- Re: CVE Request: rubygem-nokogiri Multiple DoS vulnerabilities Kurt Seifried (Dec 26)
- Re: Two CVE request for gnome-shell/screensaver issues cve-assign (Dec 26)
- Re: Re: Two CVE request for gnome-shell/screensaver issues Huzaifa Sidhpurwala (Dec 27)
- Re: Two CVE request for gnome-shell/screensaver issues cve-assign (Dec 27)
- Re: CVE request: Fat Free CRM multiple vulnerabilities cve-assign (Dec 28)
- Re: CVE request: Fat Free CRM multiple vulnerabilities Steve Kenworthy (Dec 30)
- Re: CVE request: Fat Free CRM multiple vulnerabilities cve-assign (Dec 31)
- Re: CVE request: Fat Free CRM multiple vulnerabilities Steve Kenworthy (Dec 30)
- Re: CVE request: Zenphoto 1.4.5.4 cve-assign (Dec 30)
- Re: CVE request: SMF 1.1.19, 2.0.6 cve-assign (Dec 29)
- Re: CVE Request: SASL authentication allows wrong credentials to access memcache cve-assign (Dec 30)
- Re: CVE-request: Dewplayer issues cve-assign (Dec 30)
- Re: CVE to the ntp monlist DDoS issue? cve-assign (Dec 30)
- Re: Re: CVE to the ntp monlist DDoS issue? Moritz Muehlenhoff (Dec 30)
- Re: Re: CVE to the ntp monlist DDoS issue? Florian Weimer (Dec 30)
- Re: Re: CVE to the ntp monlist DDoS issue? Moritz Muehlenhoff (Dec 30)
- Re: CVE to the ntp monlist DDoS issue? Xin Li (Dec 30)
- Re: CVE request - kernel: char: Int overflow in lp_do_ioctl() Greg KH (Dec 30)